Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/BFN1e-SVpbBfv8S2GRwFoLC8-CQ.roa
File: BFN1e-SVpbBfv8S2GRwFoLC8-CQ.roa (raw, json)
Hash identifier: 9qAj6cTrsRIxP1YyEqHZZ3/lhQ+So0z4UPYze5X1WCw=
Subject key identifier: 04:53:75:7B:E4:95:A5:B0:5F:BF:C4:B6:19:1C:05:A0:B0:BC:F8:24
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2181
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/BFN1e-SVpbBfv8S2GRwFoLC8-CQ.roa
Signing time: Fri 25 Nov 2022 04:40:00 +0000
ROA not before: Fri 25 Nov 2022 04:40:00 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 106.1.204.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8577 (0x2181)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:40:00 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=0453757BE495A5B05FBFC4B6191C05A0B0BCF824
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:23:a5:d0:d3:43:5b:12:37:d2:1f:99:83:61:
16:31:37:54:74:48:bc:22:84:37:e9:4f:6e:5a:4b:
9a:74:21:ee:cd:31:1a:4a:2b:85:4b:41:b3:b7:ad:
07:f1:9a:33:f3:e1:17:72:8b:be:71:22:36:8a:d3:
61:e5:93:1b:67:c1:c1:6e:db:a9:9b:67:20:5c:b6:
39:1e:e6:59:19:cb:49:fb:ab:70:63:e5:6a:9c:65:
3a:54:e5:82:c3:16:0a:31:72:02:46:a5:a9:46:ec:
73:4d:50:a8:a9:7e:a2:0f:9f:1e:74:e6:97:c8:48:
40:12:3f:8b:79:0b:07:ac:dd:38:e9:d7:e0:61:25:
35:46:c1:1a:97:51:47:4c:4f:b3:fd:af:b0:5a:9f:
51:9c:a3:f2:44:4d:bf:d5:51:fe:24:a0:ad:64:1a:
d2:ee:85:48:3e:6e:97:29:2c:81:eb:66:36:4b:11:
3c:e1:61:07:5b:c3:47:b9:2c:27:62:22:31:c9:b6:
45:f2:0c:5c:cf:28:13:29:28:29:12:35:71:57:a7:
51:71:59:d6:d2:c9:7d:05:d5:3c:81:ac:57:67:e5:
ae:55:65:9d:c8:b5:a9:78:ad:2b:b3:15:16:8f:98:
0b:a7:6e:26:c9:92:59:94:fa:6a:53:ea:75:c0:ab:
4e:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:53:75:7B:E4:95:A5:B0:5F:BF:C4:B6:19:1C:05:A0:B0:BC:F8:24
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/BFN1e-SVpbBfv8S2GRwFoLC8-CQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.204.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:ba:56:0e:f7:c5:8c:1e:8b:1c:82:e0:d5:92:08:37:d1:d0:
3e:b1:46:7b:2a:41:db:a0:0d:d5:2f:38:a9:a4:5b:f4:cb:39:
eb:1c:99:38:cf:bb:ce:98:6f:f4:52:04:5d:d3:e5:13:80:84:
8b:dd:f2:bd:4f:2e:67:24:b5:27:74:5c:b8:7e:48:84:21:ea:
50:09:00:a3:df:f0:a6:e1:af:0a:df:04:d2:c8:8c:2c:3c:23:
1e:97:8f:f7:ec:18:41:60:02:cf:0b:be:fe:cb:21:96:e4:58:
10:a8:08:36:56:92:6d:88:bd:aa:91:17:44:36:8f:3f:10:1c:
86:5c:16:c3:82:0c:09:a5:81:f7:86:3f:a3:8e:67:7c:b7:19:
81:75:bc:84:72:00:5f:3f:40:e1:41:f0:f1:21:a1:11:e0:71:
2c:8a:be:15:aa:53:44:49:68:12:7c:66:44:90:70:86:96:c2:
21:a4:cf:e2:5f:7f:83:9e:56:01:fe:63:e3:68:67:72:f5:0a:
ea:55:14:79:db:22:78:36:b4:d5:20:e6:88:bc:d8:59:a2:fc:
82:a1:da:80:54:16:74:76:d5:e5:43:cc:24:dc:b0:6f:cb:fb:
5a:e7:d4:c3:5e:6c:bf:63:fd:2f:3d:97:c7:74:5e:25:32:dd:
76:c5:7e:94
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICIYEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMjExMjUw
NDQwMDBaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDA0NTM3NTdCRTQ5NUE1
QjA1RkJGQzRCNjE5MUMwNUEwQjBCQ0Y4MjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC/I6XQ00NbEjfSH5mDYRYxN1R0SLwihDfpT25aS5p0Ie7NMRpK
K4VLQbO3rQfxmjPz4Rdyi75xIjaK02HlkxtnwcFu26mbZyBctjke5lkZy0n7q3Bj
5WqcZTpU5YLDFgoxcgJGpalG7HNNUKipfqIPnx505pfISEASP4t5Cwes3Tjp1+Bh
JTVGwRqXUUdMT7P9r7Ban1Gco/JETb/VUf4koK1kGtLuhUg+bpcpLIHrZjZLETzh
YQdbw0e5LCdiIjHJtkXyDFzPKBMpKCkSNXFXp1FxWdbSyX0F1TyBrFdn5a5VZZ3I
tal4rSuzFRaPmAunbibJklmU+mpT6nXAq05lAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUBFN1e+SVpbBfv8S2GRwFoLC8+CQwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0JGTjFlLVNWcGJCZnY4UzJH
UndGb0xDOC1DUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABq
AcwwDQYJKoZIhvcNAQELBQADggEBAD66Vg73xYweixyC4NWSCDfR0D6xRnsqQdug
DdUvOKmkW/TLOescmTjPu86Yb/RSBF3T5ROAhIvd8r1PLmcktSd0XLh+SIQh6lAJ
AKPf8KbhrwrfBNLIjCw8Ix6Xj/fsGEFgAs8Lvv7LIZbkWBCoCDZWkm2IvaqRF0Q2
jz8QHIZcFsOCDAmlgfeGP6OOZ3y3GYF1vIRyAF8/QOFB8PEhoRHgcSyKvhWqU0RJ
aBJ8ZkSQcIaWwiGkz+Jff4OeVgH+Y+NoZ3L1CupVFHnbIng2tNUg5oi82Fmi/IKh
2oBUFnR21eVDzCTcsG/L+1rn1MNebL9j/S89l8d0XiUy3XbFfpQ=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:25 2024 by rpki-client on console-ams.rpki-client.org